What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-08-07 15:58:06 | Did Maze ransomware operators steal 10 GB of data from Canon? (lien direct) | An internal memo confirms that the prolonged outage suffered by Canon last week was caused by a ransomware infection, Maze operators took credit for it. According to an internal memo obtained by ZDNet, the recent outage of Canon was caused by a ransomware attack, while Maze ransomware operators are taking the credit for the incident. […] | Ransomware | ||
|
2020-08-07 08:08:00 | Intel investigates security breach after the leak of 20GB of internal documents (lien direct) | Intel is investigating reports of an alleged hack that resulted in the theft and leak of 20GB of data coming from the chip giant. Intel is investigating reports that an alleged hacker has leaked 20GB of exfiltrated from its systems. The stolen data includes source code and developer documents and tools, some documents are labeled […] | Hack | ||
|
2020-08-07 06:58:17 | Google Threat Analysis Group took down ten influence operations in Q2 2020 (lien direct) | Google published its second Threat Analysis Group (TAG) report which reveals the company has taken down ten coordinated operations in Q2 2020. Google has published its second Threat Analysis Group (TAG) report, a bulletin that includes coordinated influence operation campaigns tracked in Q2 of 2020. Google revealed to have taken down ten coordinated operations in […] | Threat | ||
|
2020-08-06 12:52:32 | Netwalker ransomware operators claim to have stolen data from Forsee Power (lien direct) | Netwalker ransomware operators breached the networks of Forsee Power, a well-known player in the electromobility market. A new company has been added to the list of the victims of the Netwalker ransomware operators, it is Forsee Power, which provides advanced lithium-ion battery systems for any mobility application. The industrial group is based in France and […] | Ransomware | ||
|
2020-08-06 05:17:33 | FBI is warning of cyber attacks against Windows 7 systems that reached end-of-life (lien direct) | The FBI warned private industry partners of risks impacting companies running Windows 7 after the Microsoft OS reached the end of life on January 14. The Federal Bureau of Investigation is warning companies running Windows 7 systems of the greater risk of getting hacked because the Microsoft OS has reached the end of life on January 14. […] | |||
|
2020-08-06 05:12:38 | Hackers can abuse Microsoft Teams updater to deliver malicious payloads (lien direct) | Threat actors can abuse Microsoft Teams updater to retrieve and execute malicious code from a remote location. Security experts from Trustwave detailed the Living Off the Land technique that could allow a threat actor to abuse the MS Teams Updater to download any binary or malicious payload from a remote server. The bad news is […] | Threat | ||
|
2020-08-05 20:56:42 | Cyber Defense Magazine – August 2020 has arrived. Enjoy it! (lien direct) | Cyber Defense Magazine august 2020 Edition has arrived. We hope you enjoy this month’s edition…packed with over 147 pages of excellent content. OVER 145 PAGESALWAYS FREE – LOADED WITH EXCELLENT CONTENTLearn from the experts, cybersecurity best practicesFind out about upcoming information security related conferences, expos and trade shows. Always free, no strings attached. CLICK THIS FIRST LINK […] | |||
|
2020-08-05 15:10:19 | NSA releases a guide to reduce location tracking risks (lien direct) | The United States National Security Agency (NSA) is warning of risks posed by location services for staff who work in defence or national security. The United States National Security Agency (NSA) published a new guide to warn of the risks posed by location services for staff who work in defence or national security. The guide, titled […] | |||
|
2020-08-05 13:26:44 | Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers (lien direct) | ZDNet reported in exclusive that a list of passwords for 900+ enterprise VPN servers has been shared on a Russian-speaking hacker forum. ZDNet has reported in exclusive that a list of plaintext usernames and passwords for 900 Pulse Secure VPN enterprise servers, along with IP addresses, has been shared on a Russian-speaking hacker forum. ZDNet […] | |||
|
2020-08-05 09:28:33 | Exclusive: TIM\'s Red Team Research finds 4 zero-days in WOWZA Streaming Engine product (lien direct) | Researchers from TIM’s Red Team Research (RTR) have discovered another 4 new zero-day vulnerabilities in the WOWZA Streaming Engine product. Last month, the TIM’s Red Team Research (RTR) disclosed 2 new vulnerabilities affecting the Oracle Business Intelligence product with High severity. Today, the TIM’s Red Team Research led by Massimiliano Brolli, discovered 4 new vulnerabilities […] | |||
|
2020-08-05 08:00:47 | Flaw in popular NodeJS \'express-fileupload\' module allows DoS attacks and code injection (lien direct) | Expert found a flaw in a popular NodeJS module that can allow attackers to perform a denial-of-service (DoS) attack on a server or get arbitrary code execution. The NodeJS module “express-fileupload,” which has more that 7.3 million times downloads from the npm repository. The NodeJS module is affected by a ‘Prototype Pollution’ CVE-2020-7699 vulnerability that can allow attackers to perform a denial-of-service (DoS) attack on a […] | Vulnerability | ||
|
2020-08-04 21:36:48 | UberEats data leaked on the dark web (lien direct) | Security researchers from threat intelligence firm Cyble have discovered user records of American online food ordering and delivery platform UberEats on DarkWeb. Another day, another data breach made the headlines, this time the alleged victim is UberEATS. UberEats is an American online food ordering and delivery platform launched by Uber in 2014. During the process […] | Data Breach Threat | Uber | |
|
2020-08-04 15:14:01 | US govt agencies share details of the China-linked espionage malware Taidoor (lien direct) | China-linked hackers carried out cyber espionage campaigns targeting governments, corporations, and think tanks with TAIDOOR malware The FBI, the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Defense (DoD) released information on a RAT variant, dubbed TAIDOOR, used by China-linked hackers in cyber espionage campaigns targeting governments, corporations, and think tanks. “The Cybersecurity and Infrastructure Security […] | Malware | ||
|
2020-08-04 10:04:42 | Maze Ransomware operators published data from LG and Xerox (lien direct) | Maze ransomware operators published internal data from LG and Xerox after the company did not pay the ransom. Ransomware crews are very active during these months, Maze ransomware operators have published tens of GB of internal data allegedly stolen from IT giants LG and Xerox following failed extortion attempts. Maze ransomware operators published 50.2 GB […] | Ransomware | ||
|
2020-08-04 08:47:46 | NetWalker ransomware operators have made $25 million since March 2020 (lien direct) | NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020. The malware has been active […] | Ransomware Malware | ||
|
2020-08-03 20:39:59 | Hackers stole €1.2m worth of cryptocurrency from 2gether (lien direct) | 2gether has disclosed a security breach, hackers have stolen roughly €1.2 million worth of cryptocurrency from cryptocurrency investment accounts. Hackers stole roughly €1.183 million worth of cryptocurrency from investment accounts of 2gether, 26.79% of overall funds stored by the accounts. The attack took place on July 31 at 6.00 pm CEST, when hackers compromised the […] | |||
|
2020-08-03 13:54:07 | Reading the 2020 Cost of a Data Breach Report (lien direct) | 2020 Cost of a Data Breach Report: the global total cost of a data breach averaged $3.86 million in 2020, down about 1.5% from the 2019 study. Every year, I write about the annual report published by the Ponemon Institute on the cost of a data breach, it is a very interesting study that explores the […] | Data Breach | ||
|
2020-08-03 09:24:18 | Belarussian authorities arrested GandCrab ransomware distributor (lien direct) | Last week, the Minister of Internal Affairs of Belarus announced the arrest of a 31-year-old man that is accused of distributing the infamous GandCrab ransomware. Last week, the Minister of Internal Affairs of Belarus announced the arrest of a man on charges of distributing the infamous GandCrab ransomware. The arrest is the result of an […] | Ransomware | ||
|
2020-08-03 07:46:14 | (Déjà vu) Havenly discloses data breach, 1.3M accounts available online (lien direct) | Havenly, a Denver-Based company, that realized an interior designer marketplace has disclosed a data breach that impacted 1.3 million users. The US-based interior design web site Havenly has disclosed a data breach after the known threat actor ShinyHunters has leaked for free the databases of multiple companies on a hacker forum. Last week, BleepingComputer reported that ShinyHunterswas […] | Data Breach Threat | ||
|
2020-08-03 05:24:36 | Ghostwriter disinformation campaign aimed at discrediting NATO (lien direct) | Researchers uncovered a disinformation campaign aimed at discrediting NATO via fake news content distributed through compromised news websites. Security experts from FireEye have uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. “The operations have primarily targeted audiences in Lithuania, Latvia, and Poland with anti-North Atlantic Treaty […] | |||
|
2020-08-02 16:29:41 | (Déjà vu) FBI issued a flash alert about Netwalker ransomware attacks (lien direct) | The FBI has issued a security alert about Netwalker ransomware attacks targeting U.S. and foreign government organizations. The FBI has issued a new security flash alert to warn of Netwalker ransomware attacks targeting U.S. and foreign government organizations. The feds are recommending victims, not to pay the ransom and reporting incidents to their local FBI field offices. The flash […] | Ransomware | ||
|
2020-08-02 13:14:51 | (Déjà vu) Garmin allegedly paid for a decryptor for WastedLocker ransomware (lien direct) | BleepingComputer researchers confirmed that Garmin has received the decryption key to recover their files encrypted with the WastedLocker Ransomware. BleepingComputer first revealed that Garmin has received the decryption key to recover the files encrypted with the WastedLocker Ransomware in the recent attack. On July 23, smartwatch and wearables maker Garmin has shut down several of its services […] | Ransomware | ||
|
2020-08-02 11:13:54 | Security Affairs newsletter Round 275 (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. Records for 7.5 million users of the digital banking app Dave leaked online REMnux 7, a Linux toolkit for malware analysts released FBI warns cyber actors abusing protocols as new […] | Malware | ||
|
2020-08-02 09:27:21 | QNAP urges users to update Malware Remover after QSnatch joint alert (lien direct) | The Taiwanese vendor QNAP urges its users to update the Malware Remover app following the alert on the QSnatch malware. The Taiwanese company QNAP is urging its users to update the Malware Remover app to prevent NAS devices from being infected by the QSnatch malware. This week, the United States Cybersecurity and Infrastructure Security Agency […] | Malware | ★★★ | |
|
2020-08-02 08:35:39 | A critical flaw in wpDiscuz WordPress plugin lets hackers take over hosting account (lien direct) | A critical flaw in the wpDiscuz WordPress plugin could be exploited by remote attackers to execute arbitrary code and take over the hosting account. Security experts from Wordfence discovered a critical vulnerability impacting the wpDiscuz WordPress plugin that is installed on over 80,000 sites. The vulnerability could be exploited by attackers to execute arbitrary code […] | Vulnerability | ||
|
2020-08-01 18:55:13 | (Déjà vu) The author of FastPOS PoS malware pleads guilty (lien direct) | A 30-year-old Moldovan man pleaded guilty this week for creating the FastPOS malware that infected PoS systems worldwide. The Moldovan citizen Valerian Chiochiu (30), aka Onassis, pleaded guilty on Friday for creating the infamous FastPOS Point-of-Sale (POS) malware. Chiochiu was a member of the Infraud global cybercrime organization involved in stealing and selling credit card […] | Malware Guideline | ||
|
2020-08-01 12:21:27 | Four individuals charged for the recent Twitter hack (lien direct) | Four suspects were charged for their alleged involvement in the recent Twitter hack, announced the Department of Justice. US authorities announced the arrest of 17-year-old Graham Ivan Clark from Tampa, Florida, it is suspected to have orchestrated the recent Twitter hack. The arrest is the result of an operation coordinated by the FBI, the IRS, and […] | Hack | ||
|
2020-08-01 10:51:37 | Trump says he will ban popular Chinese video app TikTok in the US (lien direct) | President Donald Trump announced that he plans to ban the popular short video app TikTok from operating in the US as early as Saturday. President Donald Trump has announced he is going to ban the popular Chinese video-sharing app TikTok in the US. The US President is ready to sign an executive order as early […] | |||
|
2020-07-31 20:51:20 | Updates provided by Red Hat for BootHole cause systems to hang (lien direct) | Red Hat is warning customers to not install the package updates released to address the BootHole vulnerability due to possible problems reported by the users. This week, firmware security company Eclypsium reported that billions of Windows and Linux devices are affected by a serious GRUB2 bootloader issue (CVE-2020-10713), dubbed BootHole, that can be exploited to install a […] | |||
|
2020-07-31 14:51:38 | Cisco fixes critical and high-severity flaws in Data Center Network Manager (lien direct) | Cisco addressed critical and high-severity vulnerabilities affecting its Data Center Network Manager (DCNM) network management platform. Cisco addressed this week some critical and high-severity vulnerabilities impacting its Data Center Network Manager (DCNM) network management platform. One of the most security issues is a critical authentication bypass vulnerability, tracked as CVE-2020-3382. The vulnerability can allow a remote, unauthenticated attacker […] | Vulnerability | ||
|
2020-07-31 12:32:28 | IndieFlix streaming service leaves thousands of confidential agreements, filmmaker SSNs, videos exposed on public server (lien direct) | The CyberNews research team discovered an unsecured data bucket on a publicly accessible Amazon Simple Storage (S3) server containing confidential data belonging to IndieFlix. Original post at: https://cybernews.com/security/indieflix-leaks-thousands-of-filmmaker-ssns-confidential-agreements-videos/ IndieFlix is a US-based entertainment company offering a subscription-based online video streaming service that mainly specializes in independent titles, including feature films, shorts, and documentaries. The data […] | |||
|
2020-07-31 09:04:23 | EU has imposed sanctions on foreign actors for the first time ever (lien direct) | For the first-ever time, the EU has imposed economical sanctions on Russia, China, and North Korea following cyber-attacks aimed at the EU and its member states. The Council of the European Union announced sanctions imposed on a Russia-linked military espionage unit, as well as companies operating for Chinese and North Korean threat actors that launched […] | Threat | ||
|
2020-07-30 21:53:32 | (Déjà vu) Expert discloses details of 3 Tor zero-day flaws … new ones to come (lien direct) | A security researcher published the details about two Tor zero-day vulnerabilities and plans to release three more flaws. The security researcher Dr. Neal Krawetz has published technical details about two Tor zero-day vulnerabilities over the past week and promises to release three more. Oppressive regimes could exploit these Tor zero-day flaws to prevent users from […] | ★★★ | ||
|
2020-07-30 15:37:35 | Operation North Star – North-Korea hackers targeted US defense and aerospace companies (lien direct) | North Korea-linked hackers continue to be very active in this period, researchers reported a campaign aimed at the US defense and aerospace sectors. Security experts from McAfee uncovered a new cyber-espionage campaign carried out by North Korean hackers that targeted the US defense and aerospace sectors. Threat actors used fake job offers to deceive employees […] | Threat | ||
|
2020-07-30 05:49:32 | BootHole issue allows installing a stealthy and persistent malware (lien direct) | Billions of Windows and Linux devices are affected by a serious GRUB2 bootloader issue, dubbed BootHole, that can be exploited to install a stealthy malware. Billions of Windows and Linux devices are affected by a serious GRUB2 bootloader vulnerability, tracked as CVE-2020-10713 and dubbed BootHole, which can be exploited by attackers to install persistent and stealthy […] | Malware | ||
|
2020-07-29 15:12:06 | U.S. experts claim China-linked hackers have infiltrated Vatican networks (lien direct) | U.S. cybersecurity firm revealed that China-linked hackers have infiltrated Vatican computer networks ahead of talks. China-linked hackers have infiltrated the Vatican computer networks, reads a report published by the U.S. cybersecurity firm Recorded Future that focuses on the analysis of nation-state actors. According to the experts, the cyber espionage campaign began in May ahead the […] | |||
|
2020-07-29 12:21:53 | Doki, an undetectable Linux backdoor targets Docker Servers (lien direct) | Experts spotted an undetectable Linux malware that exploits undocumented techniques to evade detection and targets publicly accessible Docker servers Cybersecurity researchers at Intezer spotted a new completely undetectable Linux malware, dubbed Doki, that exploits undocumented evasion techniques while targeting publicly accessible Docker servers. The ongoing Ngrok mining botnet campaign is targeting servers are hosted on popular cloud platforms, including Alibaba […] | |||
|
2020-07-29 06:42:42 | North Korea-Linked Lazarus APT is behind the VHD ransomware (lien direct) | Security experts from Kaspersky Lab reported that North Korea-linked hackers are attempting to spread a new ransomware strain known as VHD. North Korean-linked Lazarus APT Group continues to be very active, the state-sponsored hackers are actively employing new ransomware, tracked as VHD, in attacks aimed at enterprises. The activity of the Lazarus Group surged in 2014 and […] | Ransomware | APT 38 | |
|
2020-07-28 19:59:25 | ShinyHunters leaked over 386 million user records from 18 companies (lien direct) | ShinyHunters, a trusted threat actor, is offering on a hacker forum the databases stolen from eighteen companies, over 386 million user records available online. The known threat actor ShinyHunters has begun leaking for free the databases of multiple companies on a hacker forum. A couple of days ago, the popular digital banking app Dave.com disclosed a security […] | Threat | ||
|
2020-07-28 16:49:01 | Pirate Ship Sailing to Developing World: Group-IB Uncovers Real Captains of Online Piracy Crew (lien direct) | Group-IB’s report uncovers major players and driving forces of a criminal digital piracy syndicate which has been flourishing in the post-Soviet space Group-IB, a global threat hunting and intelligence company headquartered in Singapore, today presented its report “Jolly Roger's patrons. Group-IB exposes financial crime network of online pirates in developing countries.“ The document uncovers major players […] | Threat | ||
|
2020-07-28 15:19:38 | Nefilim ransomware operators leaked data alleged stolen from the Dussmann group (lien direct) | Cyble researchers reported that Nefilim ransomware operators allegedly targeted the Dussmann group, the German largest private multi-service provider Researchers from threat intelligence firm Cyble reported that Nefilim ransomware operators allegedly targeted the Dussmann group, the German largest private multi-service provider. The Dussmann Group has over 64,500 employees in 22 countries, it is one of the […] | Ransomware Threat | ||
|
2020-07-28 11:13:25 | Hacking IoT & RF Devices with BürtleinaBoard (lien direct) | Yet another Multipurpose Breakout Board to hack hardware in a clean and easy way! How to hack IoT & RF Devices with BürtleinaBoard. Disclaimer: due to a complaint from the citizens of my native city in Italy… I had to rename #PiadinaBoard into #BurtleinaBoard 😛 Few months ago I have presented #FocacciaBoard: a similar multipurpose breakout board […] | |||
|
2020-07-28 09:03:28 | QSnatch malware infected over 62,000 QNAP NAS Devices (lien direct) | US and UK cybersecurity agencies issued a joint advisory about the spread of QSnatch Data-Stealing Malware that already infected over 62,000 QNAP NAS devices. The United States Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom's National Cyber Security Centre (NCSC) issued a joint advisory about a massive ongoing campaign spreading the QSnatch data-stealing malware. The malicious code […] | Malware | ||
|
2020-07-28 07:37:33 | FBI warns US companies on the use of Chinese Tax Software (lien direct) | The FBI has issued an alert to warn US organizations of the risk associated with the use of Chinese tax software that could be infected with malware. The Federal Bureau of Investigation has issued an alert to inform organizations in the United States of the risk associated with the use of Chinese tax software. The […] | |||
|
2020-07-27 21:27:36 | Garmin says many of the systems are returning to operation (lien direct) | Smartwatch and wearable device maker Garmin announced that its computer networks were coming back after the ransomware attack that took place last week. Last week, on July 23, smartwatch and wearable device maker Garmin had to shut down some of its connected services and call centers following a ransomware attack. A few days after the […] | Ransomware | ||
|
2020-07-27 17:31:36 | (Déjà vu) Source code of Cerberus Android Trojan offered for sale for $100,000 (lien direct) | The authors of the Android Cerberus banking trojan are auctioning the project for a price starting at $50,000, with $100K the deal could be immediately closed. The authors of the notorious Cerberus Android banking trojan are auctioning their project for a price starting at $50,000, but buyers could close the deal for $100,000. The overall […] | |||
|
2020-07-27 15:18:21 | FBI warns cyber actors abusing protocols as new DDoS attack vectors (lien direct) | The FBI issued an alert last week warning about the discovery of new network protocols that have been exploited to launch large-scale DDoS attacks. The Federal Bureau of Investigation sent an alert last week warning about large-scale distributed denial of service (DDoS) attacks that abused new network protocols. “Cyber actors' abuse of built-in network protocols […] | |||
|
2020-07-27 06:08:07 | NSA/CISA joint report warns on attacks on critical industrial systems (lien direct) | NSA is warning of cyber attacks launched by foreign threat actors against organizations in the critical infrastructure sector across the U.S. The U.S. National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) issued an alert warning of cyber attacks targeting critical infrastructure across the U.S. “Over recent months, cyber-actors have demonstrated their […] | Threat | ||
|
2020-07-27 05:57:34 | Shadow attacks allow replacing content in signed PDF files (lien direct) | Boffins from the Ruhr University Bochum (Germany) have disclosed a series of new attack methods, dubbed Shadow attacks, against signed PDF files. Security researchers from the Ruhr University Bochum (Germany) have devised a series of new attack techniques, dubbed Shadow attacks, against signed PDF files. In February 2019, the same team of experts found several […] | |||
|
2020-07-26 13:53:45 | REMnux 7, a Linux toolkit for malware analysts released (lien direct) | A new version of the REMnux Linux toolkit for malware analysts is available for download, it includes a huge set of tools for professionals. REMnux is a Linux toolkit for reverse-engineering and dissecting software, it includes a collection of free tools created by the community that allows researchers to investigate malware. The toolkit was first […] | Malware |
To see everything:
Our RSS (filtrered)
